2 matches found
CVE-2009-0109
SQL injection vulnerability in index.php in RiotPix 0.61 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information...
CVE-2009-0109
The CVE-2009-0109 entry describes a SQL injection in RiotPix 0.61 and earlier, affecting index.php where the username parameter is used in SQL queries. The underlying cause is unsafely constructed queries, enabling remote attackers to execute arbitrary SQL commands. Documented impact includes pot...